Invention Grant
US08448234B2 Method and apparatus for deep packet inspection for network intrusion detection
有权
用于网络入侵检测的深度包检测方法和装置
- Patent Title: Method and apparatus for deep packet inspection for network intrusion detection
- Patent Title (中): 用于网络入侵检测的深度包检测方法和装置
-
Application No.: US12031130Application Date: 2008-02-14
-
Publication No.: US08448234B2Publication Date: 2013-05-21
- Inventor: Maxim Mondaeev , Tal Anker , Yosef Meyouhas
- Applicant: Maxim Mondaeev , Tal Anker , Yosef Meyouhas
- Applicant Address: IL Yokneam
- Assignee: Marvell Israel (M.I.S.L) Ltd.
- Current Assignee: Marvell Israel (M.I.S.L) Ltd.
- Current Assignee Address: IL Yokneam
- Main IPC: G06F15/16
- IPC: G06F15/16 ; G06F11/00 ; G06F11/30 ; G01R31/08 ; H04L12/28
Abstract:
In a method of determining whether a data stream includes unauthorized data, the data stream is analyzed using a hardware filter to detect a presence of one or more of a first set of patterns in the data stream. It is determined whether a packet in the data stream belongs to one of a plurality of data flows to be further inspected based on the analysis of the data stream by the hardware filter. A set of rules is applied to the packet to produce rule match status data if it is determined that the packet belongs to one of the plurality of data flows to be further inspected. The packet is analyzed to determine if the packet includes unauthorized data using software stored on a computer-readable medium and implemented on a processor if the rule match status data indicates that the packet potentially includes unauthorized data.
Public/Granted literature
- US20080201772A1 Method and Apparatus for Deep Packet Inspection for Network Intrusion Detection Public/Granted day:2008-08-21
Information query
